CVE-2015-3241
N/A
N/A
Summary
OpenStack Compute (nova) 2015.1 through 2015.1.1, 2014.2.3, and earlier does not stop the migration process when the instance is deleted, which allows remote authenticated users to cause a denial of service (disk, network, and other resource consumption) by resizing and then deleting an instance.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://rhn.redhat.com/errata/RHSA-2015-1723.html
- http://www.securityfocus.com/bid/75372
- http://rhn.redhat.com/errata/RHSA-2015-1898.html
- https://github.com/openstack/ossa/blob/482576204dec96f580817b119e3166d71c757731/ossa/OSSA-2015-015.yaml
- https://security.openstack.org/ossa/OSSA-2015-015.html
- https://launchpad.net/bugs/1387543
References
- http://rhn.redhat.com/errata/RHSA-2015-1723.html
- http://www.securityfocus.com/bid/75372
- http://rhn.redhat.com/errata/RHSA-2015-1898.html
- https://github.com/openstack/ossa/blob/482576204dec96f580817b119e3166d71c757731/ossa/OSSA-2015-015.yaml
- https://security.openstack.org/ossa/OSSA-2015-015.html
- https://launchpad.net/bugs/1387543
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.